2024. 4. 11. 15:41ㆍ카테고리 없음
A website runs in three separate AWS regions and users face higher latencies.
Which service can ensure that the user gets connected to the nearest regions?
- AWS Direct Connect
- AWS VPN
- AWS Global Accelerator
Comments: AWS GlobalAccelerator can redirect the users to the nearest regions even in case of any regional failures.
- AWS Transit Gateway
What type of record is required to resolve your website URL to an IP Address?
- A Record
Comments: An 'A' record is used to specify the IP address that should be returned when a record is queried.
- CNAME
- SRV Record
- SOA Record
Which of the following BEST describes the primary function for an Application Load Balancer?
- Distribute incoming traffic evenly across all available Amazon S3 buckets in a region.
- Encrypt data stored on Amazon EBS volumes using AWS KMS.
- Route client requests to the best available server based on content and application-specific rules.
Comments: ALB is designed to route client requests based on the content of the request.
- Cache frequently accessed data to reduce the load on the Application Servers.
What load balancer type is Gateway Load Balancer?
- Layer 1
- Layer 2
- Layer 7
- Layer 3 and Layer 4
Comments: GWLB operate at Layer 3 Gateway + Layer 4 Load Balancing of the OSI model
Which AWS service supports the global distribution of traffic across regions?
- Application Load Balancers
- Gateway Load Balancers
- Network Load Balancers
- Amazon Route 53
Comments: Amazon Route 53 supports multiple response types to support the optimal distribution of traffic globally.
Which AWS service allows you to connect resources in your VPC to Amazon SQS privately?
- AWS Site-to-Site VPN
- AWS Transit Gateway
- VPC Endpoint
Comments: A VPC endpoint lets you privately connect your VPC to supported AWS services and VPC endpoint services. With VPC endpoints, resources inside a VPC do not require public IP addresses to communicate with resources outside the VPC.
- Direct Connect Gateway
Where is the endpoint network interface created when connecting to an AWS PrivateLink endpoint service hosted in another AWS account?
- In the same subnet as the Gateway VPC endpoint.
- In each subnet specified by the service consumer when creating the VPC endpoint.
- In each subnet specified by the service provider when creating the endpoint service.
Comments: The endpoint network interface does not get created by the service provider. It is created in the service consumer's VPC.
- In the public subnet of the service provider's VPC.
- In the same subnet as the Gateway VPC endpoint.
- In each subnet specified by the service consumer when creating the VPC endpoint.
- In each subnet specified by the service provider when creating the endpoint service.
- In the public subnet of the service provider's VPC.
What is the smallest CIDR block that will provide you with 26 usable IP addresses in a subnet?
- /26
- /24
- /25
- /27
Comments: A /27 subnet provides 30 usable IP addresses. Note that in AWS, the first four IP addresses and the last IP address in each subnet CIDR block are unavailable for your use, and they cannot be assigned to a resource, such as an EC2 instance.
Up to how many IPv4 addresses are in a default Amazon VPC?
- 8,192
- 16,384
- 32,768
- 65,536
Comments: Default Amazon VPCs have a size /16 IPv4 CIDR block (172.31.0.0/16). This provides up to 65,536 private IPv4 addresses.
Which of the following is used to route requests across registered targets in all configured Availability Zones?
- Target Group
- Health check
- Cross-zone load balancing
Comments: With cross-zone load balancing enabled, each load balancer node distributes traffic across all healthy registered targets in all configured Availability Zones.
- Listener
Which of these connection speeds are available for Direct Connect Dedicated Connections? (Select TWO)
- 500 Mbps
- 10 Gbps
Comments: Direct Connect Dedicated Connections are available for 1, 10 and 100 Gbps connection speeds.
- 100 Mbps
- 2.5 Gbps
- 1 Gbps
Comments: Direct Connect Dedicated Connections are available for 1, 10 and 100 Gbps connection speeds.
Are IPv6 addresses available when creating a subnet in a VPC?
- No, IPV6 is not available. Only available in IPV4.
- Yes, but a dedicated IPv6-only VPC must be deployed.
- Yes, IPv6 is supported in Amazon VPC.
Comments: Amazon VPC supports dual stack IPv4/IPv6 addressing.
- IPV6 can be used, but only if a AWS Support case is opened for approval.
Which gateway can establish a connection to a single VPC using the AWS Site-to-Site VPN service?
- NAT Gateway
- Virtual Private Gateway
- Direct Connect Gateway
Comments: Direct Connect Gateway is used to establish dedicated links.
- Internet Gateway
- NAT Gateway
- Virtual Private Gateway
- Direct Connect Gateway
- Internet Gateway
What is a supported authentication method for AWS Client VPN?
- IAM
- TACACS+
- RADIUS
- SAML
Comments: This is a security protocol to authenticate users to the Client VPN Gateway.
Which of the following AWS Global Infrastruture components are used by Amazon CloudFront to deliver content?
- AWS Region
- Availability Zone
- Edge Location
Comments: Cloudfront uses a global network of 450+ points of presence by using Edge Locations.
- Local Zone